This module enables users to sign into a Drupal website using Mozilla Persona. It works out of the box.
Persona is the Web's identity API. It connects identity providers (for example, Gmail), web browsers, and websites.
When signing in with Persona, the user's identity provider gives the web browser cyptographic proof that the user owns an email address. The web browser can then give an assertion to any website that the user wants to be signed into.
A user's identity provider will have no knowledge of which sites the user is signing into.
Because Persona uses email addresses as identity identifiers this module can be enabled on an existing Drupal site and all users will be able to sign in using Persona.
In its default configuration this module allows users to sign in with Persona or with the legacy Drupal username and password system. There is an option for Persona to "take over" authentication completely.
The module can also be disabled at any time and all users will be able to use the Drupal authentication system.
Currently no email services or web browsers support Persona natively and there are no stable software libraries to verify assertions, so Mozilla is bootstrapping the ecosystem by emulating all three of these components:
- Email services - Persona will act as a secondary identity provider by verifying email addresses the old way (sending an email with a verification link). For certain domains (currently yahoo.com and gmail.com) Persona can also use Identity Bridging. This involves using technologies that identity providers already implement like OAuth.
- Assertion verification - Mozilla host a verification service. This module will be able to perform local verification once there is a stable software library.
Eventually it will be possible to sign in using Persona without any Mozilla service being involved whatsoever.
This module needs a list of stand-out websites that use it. If there is a site that should be on this list, please create an issue and it will be added.
To use a Drupal website as an Identity Provider for Mozilla Persona use BrowserID IDP.
Bitcoin donations to Jonathan Brown for this project can be sent to: 12xExWQMKN39987YFd4hYsXcJgxMQHo55q